diff --git a/test/provision/terraform/install-requirements.yml b/test/provision/terraform/install-requirements.yml
index ca2b2913..bfd9e31a 100644
--- a/test/provision/terraform/install-requirements.yml
+++ b/test/provision/terraform/install-requirements.yml
@@ -28,12 +28,21 @@
 - hosts: all
   become: true
   gather_facts: yes
+  vars:
+    falcon_client_id: "{{ lookup('env', 'CROWDSTRIKE_CLIENT_ID') }}"
+    falcon_client_secret: "{{ lookup('env', 'CROWDSTRIKE_CLIENT_SECRET') }}"
+    falcon_customer_id: "{{ lookup('env', 'CROWDSTRIKE_CUSTOMER_ID') }}"
+    api_base_url: "https://api.laggar.gcw.crowdstrike.com"
 
   tasks:
     - name: Configure logrotate
       include_role:
         name: caos.ansible_roles.logrotate
 
+    - name: Install CrowdStrike Falcon
+      include_role:
+        name: caos.ansible_roles.install-crowdstrike-falcon
+
     - name: Configure hostname
       include_role:
         name: caos.ansible_roles.hostname
diff --git a/test/terraform/fargate/main.tf b/test/terraform/fargate/main.tf
index 3472946c..32184195 100644
--- a/test/terraform/fargate/main.tf
+++ b/test/terraform/fargate/main.tf
@@ -64,6 +64,18 @@ module "otel_infra" {
         {
           "name" : "DOCKER_PASSWORD",
           "valueFrom" : "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_docker_password}"
+        },
+        {
+          "name" : "CROWDSTRIKE_CLIENT_ID",
+          "valueFrom" : "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.crowdstrike_client_id}" 
+        },
+        {
+          "name" : "CROWDSTRIKE_CLIENT_SECRET",
+          "valueFrom" : "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.crowdstrike_client_secret}" 
+        },
+        {
+          "name" : "CROWDSTRIKE_CUSTOMER_ID",
+          "valueFrom" : "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.crowdstrike_customer_id}" 
         }
       ]
     task_custom_policies = [
@@ -85,7 +97,11 @@ module "otel_infra" {
                   "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_api}",
                   "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_nr_api_key}",
                   "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_docker_username}",
-                  "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_docker_password}"
+                  "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_docker_password}",
+                  "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.crowdstrike_client_id}",
+                  "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.crowdstrike_client_secret}",
+                  "arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.crowdstrike_customer_id}" 
+
                 ]
               }
             ]
diff --git a/test/terraform/fargate/vars.tf b/test/terraform/fargate/vars.tf
index e399f16d..21f35e49 100644
--- a/test/terraform/fargate/vars.tf
+++ b/test/terraform/fargate/vars.tf
@@ -64,6 +64,22 @@ variable "secret_name_docker_password" {
   default = "caos/canaries/docker-password-jAtw3v"
 }
 
+# CrowdStrike Falcon secrets
+
+variable "crowdstrike_client_id" {
+  default = "caos/canaries/crowdstrike_falcon_client_id-N7nGXx"
+}
+
+variable "crowdstrike_client_secret" {
+  default = "caos/canaries/crowdstrike_falcon_client_secret-l9EIhi"
+}
+
+variable "crowdstrike_customer_id" {
+  default = "caos/canaries/crowdstrike_falcon_customer_id-f7n7rI"
+}
+
+####
+
 variable "task_container_image" {
   default = "ghcr.io/newrelic/fargate-runner-action:latest"
 }